OT Security Engineer

OT Security Engineer

Location – Cracow

Why this job is for you:

The mission of the I&T Security organization is to deliver an efficient and effective service that has scalability and flexibility to support the demands of the business.

We are looking for a professional Information Systems security engineer who analyses, designs, and implements security solutions for various Industrial Control System environments. The Industrial Cyber Security Engineer is a member of a global team that is expected to support all business activities across the business divisions and sub-regions.

As an OT Security Engineer, you will be a member of team of Security Specialists supporting local OT, and the Security function, with a focus on mitigating and reducing the threat levels within the business related to Digital Industrial services. The Industrial Cyber Security Engineer will be responsible for the tuning and maintaining the Security capability and supporting Incident Management.

You will be expected to input into security plans, policies, and procedures for a variety of potential threats, vulnerabilities, and incidents. In this position you will be expected play a hands-on role in the implementation digital security projects, primarily but not limited to the ICS/OT space. The successful individual will be able to provide 2nd and 3rd level support to the SOC, and I&T, when security incidents are identified.

You will:

• Identify opportunities to improve process and Standards and act as a focal point for advice on Cyber-Security
• Act as a point of contact to detect and remediate Cyber threats
• Investigate Security incidents and provide Root Cause Analysis (RCA) to the Security Operations Team
• Following incident response undertake necessary investigations and problem management to ensure all remediations and learning is in place
• Act as a local / business facing point of contact to detect and remediate Cyber threats
• Work with the Security Operations team to proactively monitor and investigate all local Cyber threats and communicate outputs to the wider team
• Ensure digital security systems, process and policies are in place locally and rectify any gaps
• Prepare and document standard operating procedures and protocols to support project outcomes as an ambassador for IT and Information Security
• Ensure the change management processes from a Digital Security perspective is being followed
• Understand critical assets and data for local sites and work to ensure they are effectively protected
• Understand local IT/OT services and configurations ensuring vulnerabilities are identified, managed, and remediated
• Following incident response undertake necessary investigations and problem management to ensure all remediations and learning is in place
• Contribute to demand management process including time and resource planning
• Ensure Digital security systems, process and policies are in place locally and rectify any gaps
• Identify opportunities to improve process and policy and act as a focal point for advice on Digital Security
• Ensure process and policies are adhered to maintain the status and versioning of local systems
• Recognize and uses appropriate analytical tools to facilitate problem solving e.g., cost benefit analysis, risk assessment
• Contribute specialized knowledge and skill in Network Security, Endpoint security, Server Security, and Application Security to the team
• Resolve security issues to eliminate risk
• Perform research, analysis, and design of network, endpoint, and server security controls appropriate for the classification of data stored or processed in the enterprise
• Work with vendors and control owners to modify, maintain and govern security controls to address changes in business processes and security regulations
• Highlight and communicate any risks that an intended solution may pose to corporate data

You have:

• An expert knowledge of the Microsoft security stack 
• Expertise in deploying solutions towards a Zero Trust environment
• Experience in working in a multi-functional team that works across borders
• Proficiency in a wide range of information security technologies including e-mail protection, active directory hardening, network hardening, firewall optimization, data backup and restoration, end point security, etc.
• Hands on experience in IT Security Incident Response and investigation
• Experience of working in accredited environments
• Possession of professional certifications and membership in professional associations is highly desirable (e.g., CISSP, ISO27000 certification, CISM, CEH, NCSC, CCP)
• The ability to build close working relationships with I&T team members, local engineering and business contacts - critical requirement
• Technical understanding of the Purdue Model and familiarity with all tooling, security principles and security architecture, as well as being able to use the capabilities to ensure Security Compliance
• Fluency in English is a must

The information necessary in the recruitment process is: name, surname, contact details, education, previous employment record and qualifications.

Any supplementary information you provide is processed on the basis of your consent.

For the purpose of application to the position specified in the job posting we ask you to place the following statement in your application:

“I, hereby, consent to the processing of my personal data contained in the application for the job by International Paper Polska Sp. z o.o for the purpose and to the extent necessary in the recruitment process.”

If you want to take part not only in the recruitment process for the job position you applied for but in future recruitment processes as well, we ask you to place the following statement in your application:

„I, hereby, consent to the processing of my personal data contained in the application for the job by International Paper Polska Sp. z o.o  for the purpose and to the extent necessary in the current recruitment process and in the future recruitment processes as well.”

To see Privacy Notice click here: Privacy notice